Various fixes that bring us another step closer to the final release. This release implements a major security hardening fix. Consequently I ask that anyone and everyone try this release and report bugs.

Changes:

Fixed possible bug in sys_id tracking.

Added missing include to iemail.inc that causes problems when SMTP is used.

Updated German & Chinese translations.

Fixed bug in template editor when editing sections with similar names.

Added anti-cache code for forum pages in the form of 3 anti-cache headers.

Added workaround in referrer check for proxies/browsers that mangle HTTP_REFERER.

Make referrer checking optional (disabled by default).

IP tracking workaround for AOL users, who use AOL browser.

Sanitize login/alias names for 0-31 127-159 character ranges.

Move admincp above the forum path on message view.

Fixed pager in path_info template set.

Added missing code bit to mark accounts unapproved on forums where admin needs to approve every new account.

When user confirms account and it has not yet been validated by the admin give them a message to indicate why they cannot yet use their account.

To prevent unauthorized requests FUDforum now implements sequence number security mechanism. What this means is that every request is prefixed with a random number that changes every request. Every POST request and GET requests that modify things now validate this number before accepting input. If the sequence number does not equal that of a request prior to the current one, the input is rejected.